Vendor description:-------------------"VLC is a free and open source cross-platform multimedia player and frameworkthat plays most multimedia files as well as DVDs, Audio CDs, VCDs, and variousstreaming protocols."

Business recommendation:------------------------The identified vulnerability allows attackers to steal arbitrary files(accessible by the app) from the mobile device.

SEC Consult recommends not to enable "Sharing over WiFi" feature in VLCfor iOS which allows wireless file transfer to/from PC until a thoroughsecurity review has been performed by security professionals and allidentified issues have been resolved.

Vulnerability overview/description:-----------------------------------1) Local file disclosureThe 'Sharing over WiFi' feature in VLC for iOS is vulnerable to a local filedisclosure vulnerability. An attacker can read any files which can be accessedwith current application privileges. This issue can lead to data theft.

Proof of concept:-----------------1) Local file disclosureThe example below shows how the LFD vulnerability can be exploited.

Vulnerable / tested versions:-----------------------------VLC version 2.7.8 has been tested on iOS 10.3.3 and found to be vulnerable.

Vendor contact timeline:------------------------2017-08-23: Contacting vendor through email2017-08-23: Vendor replied, they are looking at it2017-09-05: Asked for a status update from the vendor2017-09-09: Vendor released patch in version 2.8.12017-09-13: Public release of advisory

Solution:---------Upgrade to the latest version available:https://itunes.apple.com/us/app/vlc-for-mobile/id650377962?mt=8

About SEC Consult Vulnerability LabThe SEC Consult Vulnerability Lab is an integrated part of SEC Consult. Itensures the continued knowledge gain of SEC Consult in the field of networkand application security to stay ahead of the attacker. The SEC ConsultVulnerability Lab supports high-quality penetration testing and the evaluationof new offensive and defensive technologies for our customers. Hence ourcustomers obtain the most current information about vulnerabilities and validrecommendation about the risk profile of new technologies.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Interested to work with the experts of SEC Consult?Send us your application https://www.sec-consult.com/en/career/index.html

Interested in improving your cyber security with the experts of SEC Consult?Contact our local offices https://www.sec-consult.com/en/contact/index.html~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~